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DETAILED ACTION 

1 . Claims 1-28 are pending. 

Priority 

2. Receipt is acknowledged of papers submitted under 35 U.S.C. 1 19(a)-(d), which 
papers have been placed of record in the file. The priority filing date for this application 
is 9-30-2003. 

Information Disclosure Statement 

3. The information disclosure statements (IDS) submitted on 3-29-2006 and 1-19- 
2007 are in compliance with the provisions of 37 CFR 1 .97, except for the following: 
copies of the last two foreign references (Cite no.'s AE and AF) cited in the 3-29-2006 
IDS were not provided. The information disclosure statements have been considered 
accordingly by the examiner. 

Claim Objections 

4. Claim 9 is objected to because of the following informalities: 

a. "the Identity Generator device" on lines 4-5; 

b. "the identity provider domain" on line 5; and, 

c. "the service provider domain" on lines 5-6; each lack antecedent basis. 
Appropriate correction is required. 
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Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

5. Claims 1-28 are rejected under 35 U.S.C. 102(e) as being anticipated by U.S. 
Patent Application Publication No. 2003/0093681 to Wettstein. 

6. Regarding claim 1 , Wettstein teaches an Identity Generator device arranged for 
generating a user's service indicator for a user to access a number of services offered 
by a service provider through a network operator where user data for the user are 
accessible, this user's service indicator being usable between the service provider 
domain and the network operator domain to unambiguously identify the user at each 
respective domain (See page 3, paragraph 34, lines 1-3, and par. 35, lines 1-6), the 
Identity Generator device comprising: means for obtaining a master user's identifier 
(380) usable to identify the user at the operator's network (See p. 4, par. 44, lines 2-4); 
means for obtaining a service identifier (400), indicative of services to be accessed at 
the service provider (See p. 4, par. 46); and means for constructing a user's service 
indicator (540) that includes the master user's identifier and the service identifier (See p. 
4, par. 44, lines 2-4, and par. 46). 
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7. Regarding claim 2, Wettstein teaches the service identifier indicative of services 
to be accessed at the service provider, comprises at least one element selected from: a 
service provider indicator, and a number of service indicators (See par. 35, lines 1-6; 
wherein the number of service indicators is unlimited). 

8. Regarding claim 3, Wettstein teaches a means for obtaining at least one element 
selected from: network operator identifier, auxiliary value, expiry time, and integrity code 
(See par. 48, lines 4-10 and 22-25); and means for including the at least one element 
into the user's service indicator (See par. 28, lines 1-4). 

9. Regarding claim 4, Wettstein teaches the master user's identifier is built up as a 
function of a real user identity (See par. 37, lines 5-11). 

1 0. Regarding claim 5, Wettstein teaches a means for carrying out a symmetric 
cipher of the user's service indicator using a ciphering key (See par. 48, lines 12-16; 
wherein authentication key 460 is the ciphering key). 

1 1 . Regarding claim 6, Wettstein teaches the ciphering key is unique for all the 
applicable service providers (See par. 45, lines 1-4; wherein each key 460 is unique). 

12. Regarding claim 7, Wettstein teaches the ciphering key is different for each 
service provider (See par. 45, lines 1-4; wherein each unique key is different). 

13. Regarding claim 8, Wettstein teaches a Decomposer component having means 
for carrying out a reverse generation to obtain a master user's identifier from a given 
user's service indicator (See par. 26, lines 1-6; wherein decomposing is required for 
authentication). 
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14. Regarding claim 9, Wettstein teaches a Decomposer component having means 
for carrying out a reverse generation to obtain a master user's identifier from a given 
user's service indicator (See par. 26, lines 1-6; wherein decomposing is required for 
authentication), the Decomposer component arranged for integration in, or co-operation 
with, at least one entity selected from: the Identity Generator device and other entities at 
the identity provider domain or at the service provider domain (See par. 48, lines 1 2-22; 
wherein the decomposer (authentication framework) is integrated in, or in co-operation 
with, the identity generator). 

15. Regarding claim 10, Wettstein teaches a means for obtaining the service 
identifier used to generate the given user's service indicator (See par. 48, lines 1-2). 

16. Regarding claim 1 1 , Wettstein teaches a means for obtaining at least one 
element selected from: network operator identifier, and ciphering key used to generate 
the given user's service indicator (See par. 28, lines 1-4, and par. 48, lines 4-10 & 22- 
25). 

17. Regarding claim 12, Wettstein teaches a means for obtaining applicable expiry 
time criteria; and means for verifying the validity of a given temporary user's service 
indicator against said expiry time criteria (See par. 28, lines 1-4, par. 47, lines 9-12, and 
par. 48, lines 22-25). 

18. Regarding claim 1 3, Wettstein teaches a means for verifying the validity of a 
given user's service indicator by making use of the master user's identifier as a search 
key towards a user directory system (See par. 27, line 1 to par. 28, line 4; wherein the 
identity repository 50 is the directory system). 
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19. Regarding claim 14, Wettstein teaches a method for generating a user's service 
indicator intended for a user to access a number of services offered by a service 
provider through a network operator where user data for the user are accessible (See 
par. 26), this user's service indicator being usable between the service provider domain 
and the network operator domain to unambiguously identify the user at each respective 
domain (See page 3, paragraph 34, lines 1-3), the method comprising the steps of: 
obtaining a master user's identifier usable to identify the user at the operator's network 
(See par. 35, lines 1-6); obtaining a service identifier, indicative of services to be 
accessed at the service provider (See p.4, par. 44, lines 2-4); and constructing a user's 
service indicator that includes the master user's identifier and the service identifier (See 
par. 46). 

20. Regarding claim 1 5, this claim recites a method for operating the device of claim 

2, and is rejected for the same reasons. 

21 . Regarding claim 16, this claim recites a method for operating the device of claim 

3, and is rejected for the same reasons. 

22. Regarding claim 17, Wettstein teaches applying a function to a real user identity 
(See par. 41). 

23. Regarding claim 1 8, this claim recites a method for operating the device of claim 

5, and is rejected for the same reasons. 

24. Regarding claim 1 9, this claim recites a method for operating the device of claim 

6, and is rejected for the same reasons. 
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25. Regarding claim 20, this claim recites a method for operating the device of claim 
7, and is rejected for the same reasons. 

26. Regarding claim 21 , Wettstein teaches determining a service provider issuing a 
communication based on a given user's service indicator (See par. 35, lines 6-9; 
wherein there is only one service provider associated with the service indicator). 

27. Regarding claim 22, Wettstein teaches carrying out a reverse generation to 
obtain the master user's identifier from a given user's service indicator (540) (See par. 
46; wherein a reverse hash of 540 produces the master user's identifier). 

28. Regarding claim 23, Wettstein teaches an Identity Generator device for 
generating a user's service indicator for a user to access a number of services offered 
by a service provider through a network operator where user data for the user are 
accessible, this user's service indicator being usable between the service provider 
domain and the network operator domain to unambiguously identify the user at each 
respective domain (See par. 26), the Identity Generator device comprising: means for 
obtaining a master user's identifier usable to identify the user at the operator's network; 
means for obtaining a service identifier, indicative of services to be accessed at the 
service provider (See page 3, paragraph 34, lines 1-3, and par. 35, lines 1-6); and 
means for constructing a user's service indicator that includes the master user's 
identifier and the service identifier, wherein said Identity Generator device is integrated 
in, or in close cooperation with, and entity of an identity provider network (See p. 4, par. 
44, lines 2-4, and par. 46). 
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29. Regarding claim 24, Wettstein teaches the identity provider network is an 
operator's network where the user data are accessible (See par. 48, lines 4-10; wherein 
the server ID is the operator network ID). 

30. Regarding claim 25, Wettstein teaches the entity is a Central Provisioning Entity 
responsible for provisioning tasks in the operator's network (See par. 48, lines 4-10; 
wherein the server is the central provisioning entity). 

31 . Regarding claim 26, Wettstein teaches the entity is a User Directory System 
storing user data (See par. 48, lines 4-10; wherein the server is the user directory 
system). 

32. Regarding claim 27, Wettstein teaches the entity is a Border Gateway placed at 
the border of the operator domain (See par. 48, lines 4-10; wherein the server is the 
border gateway). 

33. Regarding claim 28, Wettstein teaches the Border Gateway is an entity selected 
from: an HTTP Proxy, a WAP Gateway, and a Messaging Gateway (See par. 48, lines 
4-10; wherein the server is an HTTP proxy). 



Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jeffrey Seto whose telephone number is (571)270-7198. 
The examiner can normally be reached on Monday thru Thursday and alt. Fridays, 9:30 
AM-7 PM. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Joseph E. Avellino can be reached on (571 ) 272-3905. The fax phone 
number for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

JKS 

1/22/2009 



/Joseph E. Avellino/ 

Primary Examiner, Art Unit 2446 



